Lucene search

PRIOn knowledge basePRION:CVE-2009-3962

HistoryNov 17, 2009 - 6:30 p.m.

Design/Logic Flaw

2009-11-1718:30:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.017 Low

EPSS

Percentile

87.6%

JSON

The management interface on the 2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, and 2701HG-T with software before 5.29.52 allows remote attackers to cause a denial of service (reboot) via a %0d%0a sequence in the page parameter to the xslt program on TCP port 50001, a related issue to CVE-2006-4523.

CPENameOperatorVersion
1700hgle5.29.51
1701hgle5.29.51
1800hwle5.29.51
2071le5.29.51
2700hgle5.29.51
2701hg-tle5.29.51

Name	Operator	Version
1700hg	le	5.29.51
1701hg	le	5.29.51
1800hw	le	5.29.51
2071	le	5.29.51
2700hg	le	5.29.51
2701hg-t	le	5.29.51

References

webvuln.com/advisories/2wire.remote.denial.of.service.txt

www.securityfocus.com/archive/1/507587/100/0/threaded

www.securitytracker.com/id?1023116

www.vupen.com/english/advisories/2009/3110

7 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.017 Low

EPSS

Percentile

87.6%

JSON

Related for PRION:CVE-2009-3962

cve2